Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

matrix-synapse: 0.33.9 -> 0.34.0.1 (CVE-2019-5885) [18.09 backport] #53775

Closed
wants to merge 1,146 commits into from

Conversation

@pacien
Copy link
Contributor

commented Jan 10, 2019

Motivation for this change

Backport of #53772

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Assured whether relevant documentation is up to date
  • Fits CONTRIBUTING.md.

LnL7 and others added 30 commits Sep 12, 2018
ethsign: mark broken on darwin
Could be caused by our older 10.10.5 CoreFoundation.

    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:51:216:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to func literal
    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:162:47:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to
    _Cfunc_CFStringCreateWithCStringNoCopy
    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:163:225:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to func literal

/cc ZHF #45961
worker: 3.15.1 -> 3.15.2 (#46155)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
worker
tinyproxy: 1.8.4 -> 1.10.0 (#46171)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
tinyproxy
uftp: 4.9.7 -> 4.9.8 (#46175)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
uftp
star: 2.6.0c -> 2.6.1a (#46176)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
star
snd: 18.6 -> 18.7 (#46184)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
snd
radarr: 0.2.0.995 -> 0.2.0.1120 (#46185)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
radarr
sec: 2.7.12 -> 2.8.0 (#46199)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
sec
rosegarden: 17.12.1 -> 18.06 (#46188)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
rosegarden
miniupnpc_2: 2.0.20180203 -> 2.1 (#46250)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
miniupnpc
tilix: 1.8.3 -> 1.8.5 (#46180)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
tilix
lynis: 2.6.7 -> 2.6.8 (#46247)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
lynis
lockfileProgs: 0.1.17 -> 0.1.18 (#46248)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
lockfile-progs
inboxer: 1.1.2 -> 1.1.4 (#46262)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
inboxer
mercurialFull: 4.7 -> 4.7.1 (#46243)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
mercurial-full
hebcal: 4.13 -> 4.14 (#46269)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
hebcal
gromacs: 2018.2 -> 2018.3 (#46275)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
gromacs
focuswriter: 1.6.15 -> 1.6.16 (#46286)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/focuswriter/versions

@pacien pacien requested review from nbp, peti, ryantm, ttuegel and zimbatm as code owners Jan 10, 2019

@pacien

This comment has been minimized.

Copy link
Contributor Author

commented Jan 10, 2019

Oops messed up with the backport.

@pacien pacien closed this Jan 10, 2019

@pacien pacien deleted the pacien:patch-4 branch Jan 10, 2019

@pacien

This comment has been minimized.

Copy link
Contributor Author

commented Jan 10, 2019

This was already backported anyway.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.